5361812b05a45bdc75fc529d8dfdd55a5121920b6af1c25068763f562e58b325 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5361812b05a45bdc75fc529d8dfdd55a5121920b6af1c25068763f562e58b325
Size

598KB
MD5

634fa2f650f06884b35d9c43cdaf2910
SHA1

66b431f51a4b873fc351e8fee264dbcae29285db
SHA256

5361812b05a45bdc75fc529d8dfdd55a5121920b6af1c25068763f562e58b325
SHA512

b0b319bcbda98e670fce7a207f4b980e84bbd5547eccee162d9fe16cb6069cb31912b72cd87f01cfe17e280125dedcdd69f33fc8464f7008ba66c4a42e9efee8
SSDEEP

12288:7D1umC/7sqBuG8GIyCd5p07RQsiacl4C7EwcZ66rkvY6:7x87SGXC3p07SsiacKHrJ6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5361812b05a45bdc75fc529d8dfdd55a5121920b6af1c25068763f562e58b325

Files

5361812b05a45bdc75fc529d8dfdd55a5121920b6af1c25068763f562e58b325
.exe windows x86

06cf275f44fab90b91e0a90585888b2e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetScrollRange

gdi32

SaveDC

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter

advapi32

RegSetValueA

shell32

SHGetFileInfoA

comctl32

ImageList_AddMasked

oledlg

ord8

ole32

OleFlushClipboard

olepro32

ord251

oleaut32

SysStringLen

odbc32

ord4

wsock32

gethostbyname

Sections

.text
Size: 580KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE